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(57) ABSTRACT 

A method of providing secure signaling connections and 
media connections for packet data network telephony calls. 
A secure registration request message containing an encryp- 
tion technique and public key is sent from an originating 
gateway 105 over a packet data network 100 to a terminating 
gateway 105. The terminating gateway 105 returns a secure 
confirmation message containing a digital certificate over 
the packet data network 100 to the originating gateway 105. 
Once registered, further communication between the gate- 
ways 105 is encrypted over the packet data network 100 
using the public key and encryption technique specified in 
the secure registration request message. The gateways 105 
can be linked to other incompatible networks such as the 
PSTN 115 or wireless telephony 120 networks in order to 
provide telephone capability among POTS 125, wireless 
130, and IP 140 phones. 

24 Claims, 3 Drawing Sheets 
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SYSTEM AND METHOD FOR ENABLING 
SECURE CONNECTIONS FOR H323 VOIP 
CALLS 



HELD OF THE INVENTION 

The present invention relates generally to providing 
enhanced security for Internet telephony calls and more 
particularly to providing a secure connection for Voice Over 
IP (VoIP) calls using the H.323 protocol. 

BACKGROUND OF THE INVENTION 

The Internet explosion has spawned new means of data, 
voice, and video communication and Internet Protocol (IP) 
telephony is a fast developing field of telecommunications. 
The Internet, however, is faced with two significant 
obstacles to fast secure communications. The first obstacle is 
usable bandwidth. Bandwidth affects the rate at which data 
can be transferred. The second obstacle pertains to security. 
The Internet is not a direct point-to-point connection 
between computers. Rather, it is a network to which com- 
puters (or other devices) can connect for the purpose of 
communicating with one another. As such, there is increased 
opportunity for eavesdropping on data, voice, or video 
transmissions over the Internet. One method of enhancing 
the security of Internet based communications is to encrypt 
the data being transmitted before sending it out over the 
network and de -encrypting the data once it is received by the 
far end device. 

The present invention addresses security issues with 
respect to Voice Over IP (VoIP) telephone calls. Currently, a 
call signaling channel is secured by using either a Transport 
Layer Security (TLS), a Secure Sockets Layer (SSL), or an 
IP Security Protocol (IPSec) on a secure well known port. 
These approaches, however, suffer from delays in call setup 
time, complex handshaking procedures, and significant pro- 
tocol overhead. Moreover, current H.323 VoIP implementa- 
tions do not prevent signaling information firom being 
viewed by unscrupulous computer hackers on the IP network 
used for VoIP calls. For instance, when a SETUP message is 
sent over the IP network using H.323,the calling name and 
calling number is visible to sniffers or other such tools used 
on the Internet. What is needed is a method that increases 
security, simplifies VoIP handshaking procedures, and 
reduces call setup time without adding significant protocol 
overhead. 

SUMMARY OF THE INVENTION 

llie present invention calls for an originating H.323 
gateway to send a Secure Registration Request (SRR) mes- 
sage to a far end H,323 gateway prior to sending the SETUP 
message. An SRR message includes information requesting 
a S6cxu"e connection as well as other parameters such as, for 
instance, a sender's digital certificate and an encryption 
algorithm. The far end H.323 gateway can either accept the 
SRR via a Secure Connection Confirm (SCF) message or 
reject the SRR via a Secure Connection Reject (SCR) 
message. Once an SCF message is returned, all further 
communication between the H323 gateways is encrypted 
using a public key and encryption method specified in the 
SRR message. The advantages of the present invention 
include simplicity of use and lower call setup lime than TSL, 
SSL, or IPSec. 

In accordance with a first embodiment of the invention is 
a method of providing secure signaling connections for 
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packet data network telephony calls. A secure registration 
request message containing an encryption technique and 
public key is sent from an originating gateway over a packet 
data network to a terminating gateway. The terminating 

5 gateway returns a secure confirmation message containing a 
digital certificate over the packet data network to the origi- 
nating gateway. Once registered, further communication 
between the gateways is encrypted over the packet data 
network using the public key and encryption technique 

10 specified in the secure registration request message. 

Other aspects and features of the present invention will 
become apparent to those ordinarily skilled in the art upon 
review of the following description of specific embodiments 
of the invention in conjunction with the accompanying 

15 figures. 

BRIEF DESCRIPTION OF THE HGURES 

FIG. 1 illustrates one possible embodiment of a network 
configuration according to the present invention. 

FIG. 2 is a prior art message flow diagram illustrating 
H.323 VoIP call messaging. 

FIG. 3 is a message flow diagram illustrating secure 
H.323 VoIP call messaging according to the present inven- 

DETAILED DISCLOSURE OF THE INVENTION 

FIG. 1 is a network diagram iflustrating some key com- 
ponents used to make VoIP telephone calls, VoIP calls are 
telephone calls in which at least one end user device (phone) 
utilizes a packet data network (e.g., the Internet) to com- 
municate with another phone. A phone linked to a packet 
data network is typically referred to as an IP phone. The 
other phone can be another IP phone, a cellular (wireless) 
phone connected to a wireless telephone network, or a plain 
old telephone service (POTS) phone connected to a public 
telephone network such as the public switching telephone 
network (PSTN). Moreover, additional phones (IP, wireless, 
or POTS) may be included in a single call as in a conference 
.n call. 

40 

IP networks transmit voice data over a packet data net- 
work in discrete packets. Thus, it is a digital scheme. An 
analog signal (e.g., voice) is digitized and formed into data 
packets that are sent over the packet data network where 
^5 they are reconverted to an analog signal for the end user 
device. 

In order to allow for phone calls to travel between an IP 
packet data network and a circuit switched network, there 
must exist an interface point at which IP voice data packets 

50 are converted to the format of the circuit switched network. 
The entity responsible for this network interfacing is an 
H.323 gateway. 

In general, a gateway is a node that connects two other- 
wise incompatible networks. Gateways can connect all sorts 

55 of incompatible networks including VoIP to PSTN, VoIP to 
wireless, and wireless to PSTO. In this case the Gateway(s) 
are responsible for connecting the PSTN and/or wireless 
networks with an IP network. H.323 is an ITU standard 
defining a set of call control, channel setup, and codec 

60 specifications for transmitting real-time audio and video 
over packet data networks. Thus, an H.323 gateway is an 
interface between packet data networks like the Internet and 
other networks that wish to transmit audio or video. 
The present invention focuses on the secure connection 

65 aspect of the packet data network for VoIP calls. PSTN 
security and wireless security are beyond the scope of the 
present invention. 
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FIG. 1 illustrates an IP network 100 as the center of a VoIP 
call system. Connected to IP network 100 are a plurality of 
H.323 gateways 105. There can be virtually any number of 
H.323 gateways connected to the network. Moreover, an 
H.323 gateway can be part of, for instance, a service 
provider's end office 110. H.323 gateways 105 can also be 
connected to other incompatible networks such as a PSTN 
115 or a wireless network 120. PSTN 115, in turn, is a 
telephone network having a plurality of POTS phones 125 
connected to it. The actual complexity and scope of a PSTN 
network (e.g., the devices between PSTN 115 and POTS 
phones 125) is not illustrated as it is outside the scope of the 
present invention. Similarly, wireless network 120 is a 
telephone network having a plurality of wireless phones 130 
connected to it. The actual complexity and scope of a 
wireless network is also not illustrated as it is outside the 
scope of the present invention. An H.323 gateway 105 can 
also be connected to another IP network 135 that is con- 
nected to an IP phone 140, H.323 gateways 105 can be 
configured with data about other H.323 gateways 105 on the 
network 100. 

A translation server 145 is also connected to IP network 
100. Translation server 145 maintains data pertaining to all 
of the H.323 gateways 105 on IP network 100. This data can 
be accessed by any of the H.323 gateways 105 on the 
network 100 when necessary such as when one H.323 
gateway 105 needs to establish a connection with another 
H.323 gateway 105 that it was not configured with data 
about. 

Calls made from IP phones 140 to POTS phones 125 or 
wireless phones 130 are routed through up to two H.323 
gateways 105 in the network. The secure connection 
addressed by the present invention occurs between H.323 
gateways 105 or between an H.323 gateway 105 and an IP 
phone 140 it services. Thus, even if a call uses only one 
H.323 gateway 105, it still faces secure connection issues 
that are addressed by the present invention. If a second 
H.323 gateway 105 is required to complete the call then a 
secure connection is established between the H.323 gate- 
ways 105 as well as between each H.323 gateway 105 and 
an IP phone 140 it is servicing. 

FIG. 2 is a prior art message flow diagram illustrating 
H.323 VoIP call setup messaging between H.323 gateways. 
Security between H.323 gateways is currently implemented 
using any one of a number of standard protocols including 
TLS, SSL, or IPSec. These security measures are performed 
on a per call basis meaning the overhead and time associated 
with each is performed every time a call is made between 
H.323 gateways. FIG. 2 depicts the call setup signaling used 
to make a call from one phone (endpoint A) to another phone 
(endpoint B). The phones can be POTS, wireless, or IP so 
long as the connection between them utilizes an IP network 
at some point. 

When a user at endpoint A activates his IP phone, a 
SETUP message is sent from the phone to its servicing 
H.323 gateway. The protocol between an IP phone and an 
H.323 gateway is time division multiplexing (TDM) based. 
The endpoint A H.323 gateway then forwards a SETUP 
(fastStart) message to the H.323 gateway servicing endpoint 
B. The endpoint B H.323 gateway then forwards the SETUP 
message to the endpoint B phone. The endpoint B phone 
returns an ALERTING message to its servicing H.323 
gateway. The endpoint B H.323 gateway then forwards an 
ALERTING (faslStarl) message to the endpoint A H.323 
gateway which relays an ALERTING message to the end- 
point A phone. This is then followed by a CONNECT 
message from the endpoint B phone to the endpoint B H.323 
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gateway. The endpoint B H.323 gateway forwards a 
CONNECT(fastStart) message to the endpoint A H.323 
gateway which forwards a CONNECT message to the 
endpoint A phone. Once this is complete, a media control 

5 channel has been opened between the H.323 gateways and 
the two endpoints can speak to one another. When the 
conversation is complete a DISCONNECT message is sent 
from the endpoint A phone to the endpoint A H.323 gateway. 
The DISCONNECT message is relayed to the endpoint B 
H.323 gateway and on to the endpoint B phone thereby 
terminating the connection. 

FIG. 3 is a message flow diagram illustrating secure 
H.323 VoIP call setup messaging between H.323 entities 
according to the present invention. H.323 entities include 

^ 5 H.323 gateways as well as IP phones. Endpoints A and B can 
be IP phones, wireless phones, or POTS phones. At least one 
network between the endpoints is a packet data network 
utilizing the H.323 call protocol. 
Under the present invention, H.323 gateways perform a 

20 secure registration process in which they exchange infor- 
mation among themselves or with a translation server asso- 
ciated with the IP network. The essence of the information 
exchanged includes encryption algorithms and public key 
data. The exchange occurs as part of the configuration or 

25 setup of an H.323 gateway such as when an H.323 gateway 
is powered up or upon its joining an H.323 zone. An H.323 
zone is a collection of endpoints. Typically, this means 
gateways and IP phones with no more than one gatekeeper. 
The information exchange begins when a new H.323 gate- 

30 way sends a Secure Registration (SRR) message to another 
H.323 gateway that has already been configured in the IP 
network or to the translation server. In general, an SRR 
message is a request for a public key and associated encryp- 
tion algorithm to be used in future communication between 

35 the H.323 gateways. 

The format of the SRR message includes the parameters 
requestSeqNum, protocolldentifier, nonStandardData, 
sendersCertificate, key Exchange, digitalSignature, Tokens, 
cryptoTokens, mediaEncryption, and integrityCheckSum. 

40 The requestSeqNum parameter is a monotonically increas- 
ing number unique to a sender. It is returned by the receiver 
in any messages associated with this specific message. The 
protocolldentifier parameter identifies the H. 225.0 vintage 
of the sending point. H.225 is a caU signaling protocol and 

45 media stream packetization scheme for packet-based multi- 
media communication systems. The nonStandardData 
parameter carries other information such as proprietary data. 
The sendersCertificate parameter is the digital certificate of 
the sender. The keyExchange parameter is an algorithm and 

50 associated parameters used in a public key exchange 
between H.323 gateways or between an IP Phone and an 
H.323 gateway. The digitalSignature parameter is an 
optional parameter containing the digital signature of the 
sender. The Tokens parameter refers to data that may be 

55 required to permit an operation. Such data is inserted into a 
message if available. TTie cryptoTokens parameter refers to 
encrypted tokens. The mediaEncryption parameter is a 
Boolean type parameter used to indicate if the H.323 gate- 
way should also encrypt the media (voice). The integrity- 

60 Checksum parameter provides improved message integrity/ 
message authentication. 

A digital certificate is a document attesting to the binding 
of a public key to an individual or other entity. Digital 
certificates allow verification of a claim that a specific public 

65 key does in fact belong to a specific individual. In their 
simplest form, a digital certificate includes a public key and 
a name. Digital certificates are issued by a certifying author- 
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ity which can be any trusted central administration entity receiver in any messages associated with this specific mes- 

willing to vouch for the identities of those it issues certifi- sage. The protocolldentifier parameter identifies the H. 225.0 

cates to as well as their association with a given public key. vintage of the sending point. The nonStandardData param- 

Examples include a company that issues digital certificates eler carries other information such as proprietary data. The 
to its employees, a university that Issues digital certificates 5 rejectReason parameter includes the reason for the rejection 

to its students, or a town that issues digital certificates to its of registration request. The Tokens parameter refers to 

citizens ^^^^ required to permit an operation. Such data 

^ , , . . t . . 1 1 is inserted into a message if available. The cryptoTokens 

An SRR message need only be issued once whch can be parameter refers to encrypted tokens. The integrityCheck- 

for example, on uiitial boot (e.g., power up of an H.323 y^^^^ parameter provides improved message integrity/ 
gateway or IP Phone) or upon joining an IP network. A new lO message authentication. 

digital certificate results in a new SRR message. A new Registration Request (SRR), Secure Connec- 

digital certificate may be required if an H.323 gateway tion Confirm (SCF), and Secure Connection Reject (SRJ) 

determines that its current digital certificate has been com- messages are new messages. That is, they are not a part of 

promised. The H.323 gateway can acquire a new digital the current H.323 messaging protocol and would need to be 
certificate from the issuing authority. In such a case, the ^5 implemented into H.323 protocol and universally imple- 

other H.323 gateways need to be informed of the new digital mented. 

certificate. Hence the need for a new SRR message. it is to be understood that the present invention illustrated 
When an H.323 gateway or translation server receives an herein is readily implementable by those of ordinary skill in 
SRR message from another H.323 gateway seeking to join the art as a computer program product having a medium with 
the IP network, it can respond in one of two ways. One is to a computer program embodied thereon. Ilie computer pro- 
return a Secure Confirmation (SCF) message accepting the g^am product is capable of being loaded and executed on the 
new H.323 gateway into the IP network. The other is to appropriate computer processing device(s) m order to carry 
return a Secure Connection Reject (SRJ) message not ^he method or process steps described. Appropriate 
accepting the new H.323 gateway into the IP network. computer program code m combination with hardware 
ir o^T- • J u 11 J 25 implements many of the elements of the present invention. 
If an SCF message is returned, then calls are processed -j^j^ computer code is often stored on storage media. This 
according to the illustration in FIG. 2. Note, however, that j^^dia can be a diskette, hard disk, CD-ROM, optical storage 
aU messaging between H.323 gateways is encrypted includ- media, or tape. Tlie media can also be a memory storage 
ing the actual conversation between the parties. This device or collection of memory storage devices such as 
includes the initial messaging (SETUP, ALERTING, read-only memory (ROM) or random access memory 
CONNECT) estabhshing the connection between the end- (RAM). Additionally, the computer program code can be 
points. The encryption data used to secure the connection transferred to the appropriate hardware over some type of 
was exchanged during the registration process. Thus, com- data network. 

puter hackers can no longer view call information such as xhe present invention has been described, in part, with 

calling name and calling number. reference to message diagrams. It will be understood that 

The format of the SCF message includes the parameters each message diagram can be implemented by computer 

requestSeqNum, protocolldentifier, nonStandardData, program instructions. These computer program instructions 

acceptorCertificate, digitalSignature, Tokens, cryptoTokens, may be loaded onto a general purpose computer, special 

mediaEncryption, and in tegrityCheck Value. The requestSe- purpose computer, or other programmable data processing 

qNum parameter is a monotonically increasing number apparatus to produce a machine, such that the instmctions 

unique to a sender. It is returned by the receiver in any which execute on the computer or other programmable data 

messages associated with this specific message. The proto- processing apparatus create means for implementing the 

colldentifier parameter identifies the vintage of the accepting functions specified in the message diagrams, 

point. The nonStandardData parameter carries other infor- These computer program instructions may also be stored 
mation such as proprietary data. The acceptorCertificate 45 in a computer-readable memory that can direct a computer 

parameter is the digital certificate of the acceptor. The or other programmable data processing apparatus to function 

digitalSignature parameter is an optional parameter contain- in a particular manner, such that the instructions stored in the 

ing the digital signature of the acceptor. The Tokens param- computer-readable memory produce an article of manufac- 

eter refers to data that may be required to permit an ture including instruction means which implement the Re- 
operation. Such data is inserted into a message if available. 53 tions specified in the message diagrams. The computer 

The cryptoTokens parameter refers to encrypted tokens. The program instructions may also be loaded onto a computer or 

mediaEncryption parameter is a Boolean type parameter other programmable data processing apparatus to cause a 

used to indicate if the H.323 gateway should also encrypt the series of operational steps to be performed on the computer 

media (voice).The in tegrityCheck Value parameter provides or other programmable apparatus to produce a computer 
improved message integrity/message authentication. 55 implemented process such that the instructions which 

If an SRJ message is returned then the H.323 gateway execute on the computer or other programmable apparatus 

seeking secure registration is not recognized and secure provide steps for implementing the functions specified in the 

communications involving that H.323 gateway are not pos- message diagrams. 

sible. An H.323 gateway could reject a registration request Accordingly, message diagrams support combinations of 
for any number of reasons including, but not limited to, an 50 means for performing the specified functions, combinations 

invalid digital certificate or no support for the encryption of steps for performing the sT^ecified functions and program 

algorithms included with the SRR message. instruction means for performing the specified functions. It 

The format of the SRJ message includes the parameters will also be understood that each message diagram can be 

requestSeqNum, protocolldentifier, nonStandardData, implemented by special purpose hardware-based computer 
rejectReason, Tokens, cryptoTokens, and integrityCheck- 65 systems that perform the specified functions or steps, or 

Value. The requestSeqNum parameter is a monotonically combinations of special purpose hardware and computer 

increasing number unique to a sender. It is returned by the instructions. 
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In the following claims, any means-plus-function clauses 
are intended to cover the structures described herein as 
performing the recited function and not only structural 
equivalents but also equivalent structures. Therefore, it is to 
be understood that the foregoing is illustrative of the present 5 
invention and is not to be construed as limited to the specific 
embodiments disclosed, and that modifications to the dis- 
closed embodiments, as well as other embodiments, are 
intended to be included within the scope of the appended 
claims. The invention is defined by the following claims, ]0 
with equivalents of the claims to be included therein. 

What is claimed is: 

1. A method of providing secure signaling connections for 
packet data network telephony calls comprising: 

prior to call initiation: ^5 
sending a secure registration request message contain- 
ing an encryption technique and public key from a 
sender gateway over a packet data network to an 
acceptor gateway; 
returning a secure confirmation message containing a 20 
digital certificate from the acceptor gateway over the 
packet data network to the sender gateway; and 
conducting encrypted data exchanges between the 
sender and acceptor gateways over the packet data 
network using the public key and encryption tech- 25 
nique specified in the secure registration request 
message. 

2. The method of claim 1 in which the secure registration 
request message is sent by the sender gateway when it is 
powered up. 

3. The method of claim 1 in which the secure registration 
request message is sent by the sender gateway when it 
initially joins the packet data network. 

4. The method of claim 1 in which the secure registration 
request message is comprised of: ^5 

a requestSeqNum parameter to be returned by the accep- 
tor gateway in all messages associated with the secure 
registration request message; 

a protocolldentifier parameter for identifying the H.225.0 
vintage of the sender gateway; 

a sendersCertificate parameter containing the digital cer- 
tificate of the sender gateway; and 

a keyExchange parameter containing the encryption algo- 
rithm and public key to be used in data exchanges 
between the sender and acceptor gateways. 

5. The method of claim 1 in which the secure confirmation 
message is comprised of: 

a requestSeqNum parameter to be returned by the accep- 
tor gateway in all messages associated with the secure 
registration request message; 

a protocolldentifier parameter for identifying the H.225.0 
vintage of the acceptor gateway; and 

an acceptorCertificate parameter containing the digital 
certificate of the acceptor gateway. 55 

6. A method of providing secure signaling connections for 
packet data network telephony calls comprising: 

prior to call initiation: 

in a gateway, receiving a secure registration request 
message containing an encryption technique and 60 
public key over a packet data network from an IP 
phone; 

returning a secure confirmation message containing a 
digital certificate from the gateway over the packet 
data network to the IP phone; and 65 

conducting encrypted data exchanges between the IP 
phone and the gateway over the packet data network 
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using the public key and encryption technique speci- 
fied in the secure registration request message. 

7. The method of claim 6 in which the secure registration 
request message is sent by the IP phone when it is powered 
up. 

8. The method of claim 6 in which the secure registration 
request message is sent by the IP phone when it initially 
joins the packet data network. 

9. The method of claim 6 in which the secure registration 
request message is comprised of: 

a requestSeqNum parameter to be returned by the gate- 
way in all messages associated with the secure regis- 
tration request message; 

a protocolldentifier parameter for identifying the H.225.0 
vintage of the IP phone; 

a sendersCertificate parameter containing the digital cer- 
tificate of the IP phone; 

a keyExchange parameter containing the encryption algo- 
rithm and public key to be used in data exchange 
between the IP phone and gateway; and 

a mediaEncryption parameter to determine whether the 
gateways should encrypt the media. 

10. The method of claim 6 in which the secure confirma- 
tion message is comprised of: 

a requestSeqNum parameter to be returned by the gate- 
way in all messages associated with the secure regis- 
tration request message; 

a protocolldentifier parameter for identifying the H.225.0 
vintage of the gateway; 

an acceptorCertificate parameter containing the digital 
certificate of the gateway; and 

a mediaEncryption parameter to determine whether the 
gateways should encrypt the media. 

11. A gateway for providing secure signaling connections 
for packet data network telephony calls operating under 
control of a computer program, said computer program 
using computer program code comprised of: 

computer program code operative prior to call initiation 
and comprising: 

computer program code for sending a secure registra- 
tion request message from a sender gateway over a 
packet data network to an acceptor gateway, said 
secure registration request message containing an 
encryption technique and public key; 

computer program code for receiving a secure confir- 
mation message over the packet data network to the 
sender gateway, said secure confirmation message 
containing a digital certificate from the acceptor 
gateway; and 

computer program code for conducting encrypted data 
exchanges between the sender and acceptor gate- 
ways over the packet data network using the public 
key and encryption technique specified in the secure 
registration request message. 

12. The gateway of claim 11 in which the secure regis- 
tration request message is sent by the sender gateways when 
it is powered up. 

13. The method of claim 11 in which the secure registra- 
tion request message is sent by the sender gateway when it 
initially joins the packet data network. 

14. The method of claim 11 in which the secure registra- 
tion request message is comprised of: 

computer program code representing a unique parameter 
to be returned by the acceptor gateway in all messages 
associated with the secure registration request message; 
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computer program code for identifying the H. 225.0 vin- 
tage of the sender gateway; 

computer program code containing a parameter with the 
digital certificate of the sender gateway; and 

computer program code containing the encryption algo- 5 
rilhm and public key to be used in data exchanges 
between the sender and acceptor gateways. 

15. The method of claim 11 in which the secure confir- 
mation message is comprised of: 

computer program code representing a unique parameter 
to be returned by the acceptor gateway in all messages 
associated with the secure registration request message; 

computer program code for identifying the H. 225.0 vin- 
tage of the acceptor gateway; and 

computer program code containing a parameter with the 
digital certificate of the acceptor gateway. 

16. A programmable gateway including computer pro- 
gram code for providing secure signaling connections for 
packet data network telephony calls comprising: 

computer program code operative prior to call initiation 
and comprising: 

computer program code for receiving secure registra- 
tion request message containing an encryption tech- 
nique and public key over packet data network from 
an IP phone; 

computer program code for returning a secure confir- 
mation message containing a digital certificate over 
the packet data network to the IP phone; and 

computer program code for conducting encrypted data 
exchanges with the IP phone over the packet data 
network using the public key and encryption tech- 
nique specified in the secure registration request 
message. 

17. A gateway for providing secure signaling and media 
connections for packet data network telephony calls oper- 
ating under control of a computer program, said computer 
program using computer program code comprised of: 

computer program code operative prior to call initiation 
and comprising: 

computer program code for sending a secure registra- 
tion request message from a sender gateway over a 
packet data network to an acceptor gateway, said 
secure registration request message containing an 
encryption technique and public key; 

computer program code for receiving secure confirma- 
tion message over the packet data network to the 
sender gateway, said secure confirmation message 
containing a digital certificate from the acceptor 
gateway; and 

computer program code for conducting encrypted data 
and media exchanges between the sender and accep- 
tor gateways over the packet data network using the 
public key and encryption technique specified in the 
secure registration request message. 

18. The method of claim 17 in which the secure registra- 
tion request message is comprised of: 

computer program code representing a unique parameter 
to be returned by the acceptor gateway in all messages 
associated with the secure registration request message; 

computer program code for identifying the H. 225.0 vin- 
tage of the sender gateway; 

computer program code containing a parameter with the 
digital certificate of the sender gateway; 

computer program code containing the encryption algo- 65 
rithm and public key to be used in data exchanges 
between the sender and acceptor gateways; and 



computer program code containing a parameter used to 
determine whether the gateways should encrypt the 
media. 

19. The method of claim 17 in which the secure confir- 
mation message is comprised of: 

computer program code representing a unique parameter 
to be returned by the acceptor gateway in all messages 
associated with the secure registration request message; 

computer program code for identifying the H. 225.0 vin- 
tage of the acceptor gateway; 

computer program code containing a parameter with the 
digital certificate of the acceptor gateway; and 

computer program code containing a parameter used to 
determine whether the gateways should encrypt the 
media. 

20. A method of providing secure signaling and media 
connections for packet data network telephony calls com- 
prising: 

prior to call initiation: 

sending a secure registration request message contain- 
ing an encryption technique and public key from a 
sender gateway over a packet data network to an 
acceptor gateway; 
returning a secure confirmation message containing a 
digital certificate from the acceptor gateway over the 
packet data network to the sender gateway; and 
conducting encrypted data and media exchanges 
between the sender and acceptor gateways over the 
packet data network using the public key and encryp- 
tion technique specified in the secure registration 
request message. 

21. The method of claim 20 in which the secure registra- 
tion request message is sent by the sender gateway when it 
is powered up. 

22. The method of claim 20 in which the secure registra- 
tion request message is sent by the sender gateway when it 
initially joins the packet data network. 

23. The method of claim 20 in which the secure registra- 
tion request message is comprised of: 

a requestSeqNum parameter to be returned by the accep- 
tor gateway in all messages associated with the secure 
registration request message, 

a protocolldentifier parameter for identifying the H.225.0 
vintage of the sender gateway; 

a sendersCertificate parameter containing the digital cer- 
tificate of the sender gateway; 

a keyExchange parameter containing the encryption algo- 
rithm and public key to be used in data exchanges 
between the sender and acceptor gateways; and 

a mediaEncryption parameter to determine whether the 
gateways should encrypt the media. 

24. The method of claim 20 in which the secure confir- 
mation message is comprised of: 

a requestSeqNum parameter to be returned by the accep- 
tor gateway in all messages associated with the secure 
registration request message; 

a protocolldentifier parameter for identifying H.225.0 
vintage of the acceptor gateway; 

an acceptorCertificate parameter containing the digital 
certificate of the acceptor gateway; and 

a mediaEncryption parameter to determine whether the 
gateways should encrypt the media. 
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